turn off the use remote networks gateway on the clients and that should fix
the problems. This must be done on the client because by default, when you
use atleast the windows PPTP dialin option, the use default gateway is
selected as a default option, thus, when connected via the VPN, everything
you do, goes over the VPN connection through your PPTP server and back out,
thus, a rule issue or DNS issue when connecting VIA the VPN could break your
ability to browse the net when its connected.
By making this change in the client, everything not behind the POPTop server
will go out over the non-tunneled link
James
----- Original Message -----
From: "Bryan Irvine" <[EMAIL PROTECTED]>
To: "James Mackinnon" <[EMAIL PROTECTED]>
Cc: <misc@openbsd.org>
Sent: Thursday, February 08, 2007 5:45 PM
Subject: Re: poptop config question
On 2/8/07, James Mackinnon <[EMAIL PROTECTED]> wrote:
Brian, if using windows PPTP setup, remove the Use remote networks
gateway
checkmark so that everything you do doesn't go through the Poptop box
including web.
I've tested using the windows vpn setup and the mac os x. Same problem.
You will however require the use remote network gateway if the side you
are
connecting has multiple networks routed in other locations (isakmpd VPNs
to
other locations)
I do have other remote offices conncted via isakmpd.
I don't have my config files in front of me, but what you are mentioning
would seem to be an issue with the remote gateway option but yet pf
blocking
you or something (would need to check your PF logs to see if thats the
case
and I'm assuming you use PF)
PF is set to pass all right now.
